| CPC G06F 21/6245 (2013.01) [G06F 21/602 (2013.01); G16H 10/60 (2018.01); H04L 9/3228 (2013.01); G06F 2221/2137 (2013.01); G06F 2221/2141 (2013.01)] | 20 Claims |
|
1. A computer program product comprising:
a program of instructions tangibly embodied on a non-transitory computer readable medium wherein, when the instructions are executed on a processor, the processor causes operations to be performed to automatically provide transient user credentialing for interaction with patient health data based on predetermined associations with a user, a patient associated with the patient health data, and a patient health data originator, the operations comprising:
receive, from a device of a requestor, a signal corresponding to a request for access to health records of a patient from a first data store;
in response to receiving the signal, determine a plurality of predetermined digital records stored in the first data store based on a predetermined association with the patient;
retrieve, from at least a second data store, a patient relation object and a patient identification object associated with the patient;
determine, based on the patient relation object, whether a predetermined association between the requestor and the patient exists and meets a first predetermined access criterion;
upon determining that the predetermined association is determined to meet the first predetermined access criterion, then, determine, based on the patient relation object, a predetermined role for the requestor with relation to the patient;
generate, in a memory device, an authenticated access token data structure configured to receive time-limited access tokens corresponding to selected digital records with authenticated access selected from the plurality of predetermined digital records associated with the patient;
perform access selection operations for each of the plurality of predetermined digital records determined in response to the receiving signal, the access selection operations comprising:
determine, based on the predetermined role and on metadata associated with a currently selected predetermined digital record selected from the plurality of predetermined digital records, whether the predetermined role meets a second predetermined access criterion;
determine, based on the patient identification object and a creator identification object associated with the currently selected predetermined digital record, whether a predetermined association between the requestor and a creator of the currently selected predetermined digital record exists and meets a third predetermined access criterion;
upon determining that the first predetermined access criterion, the second predetermined access criterion, and the third predetermined access criterion are satisfied, then generate a time-limited access token for the currently selected predetermined digital record, wherein the time-limited access token comprises a uniform resource identifier, having a time sensitive unique access code, to a playback address associated with a corresponding digital record; and,
insert the time-limited access token to the authenticated access token data structure;
generate a human-readable display comprising a human-readable indicium for each of at least some of the generated time-limited access tokens; and,
transmit, to the device of the requestor, a plurality of the time-limited access tokens generated by the access selection operations and stored within the authenticated access token data structure such that the requestor is provided individual temporary streaming access, via each corresponding token of the plurality of the time-limited access tokens, to authenticated digital records of the plurality of predetermined digital records based on the first predetermined access criterion, the second predetermined access criterion, and the third predetermined access criterion.
|